🅸 🅰🅼 🆃🅷🅴 🅻🅰🆆.
𝕽𝖚𝖆𝖎𝖉𝖍𝖗𝖎𝖌𝖍 𝖋𝖊𝖆𝖙𝖍𝖊𝖗𝖘𝖙𝖔𝖓𝖊𝖍𝖆𝖚𝖌𝖍
Yes! I always think about the fact that the Hebrew law against eating pork is because the ancient tribes were migrant herders, and their competition was farming communities. You can’t herd pigs, but you can herd sheep, and you don’t want to enrich those other people so you make a dictate against eating pork. Not politics, but economics, although in a lot of ways that’s a distinction without a difference.
I think the MSC certification may only apply in the US. The UK probably has different certifications.
I have a spelling checker enabled for most non-compiled files. Sometimes it really annoying, but sometimes it catches stuff like this, so I leave it on.
Is your server a dedicated server, or a VPS? Because if it’s a VPS, you’re probably already running in a VM.
Adding a VM might provide more security, especially if you aren’t an expert in LXC security configuration. It will add overhead. Running Docker inside Docker provides nothing but more overhead and unnecessary complexity to your setup.
Also, because it isn’t clear to me from your post: LXC and Docker are two ways of doing the same thing, using the same Kernel capabilities. Docker was, in fact, written in top of LXC. The only real difference is the container format. Saying “running Docker on LXC” is like saying “running Docker on Docker,” or “running Docker on Podman,” or “running LXC on Docker”. All you’re doing is nesting container implementations. As opposed to VMs, which do not just use Linux namespace capabilities, and which emulate an entirely different computer.
LXC, Podman, and Docker use the underlying OS kernel and resources. VMs create new, virtual hardware (necessarily sharing the same hardware architecture, but nothing else from the host) and run their own kernels.
Saying “Docker VM” is therefore confusing. Containers - LXC, Podman, or Docker - don’t create VMs. They partition and segregate off resources from the host, but they do not provide a virtual machine. You can not run OpenBSD in a Docker container on Linux; you can run OpenBSD in a VM on Linux.
If you buy more expensive tuna, you’ll get cuts that are clearly from one fish. Albacore, for instance, I’ve never seen come in that shredded form.
Also, if you’re interested in sustainability, look for line-caught tuna. It’s not the only sustainable fishing practice, but it’s an eat one to remember. In the US, there’s an MSC certification on the can that’s a reasonably indicator that the company practices sustainable fishing.
If you’re getting cans full of flakes, it’s probably not all from the same fish, or even the same kind of tuna.
Good strategy; I’m doing the hoarding, but only because I don’t know what else to do with it.
Thanks! I’ve mostly given up on the quality journey, for now. Maybe post end-game, but at the moment it’s just tedious, slow, and frustrating. I do have a stationary platform that’s only mining quality asteroids, mainly for ore->plate, but it’s still annoying. If I come back to it, my plan is to build a mobile factory to run between Vulcanus and Nauvis and produce quality raw product (well, I’ll probably do at least the plate in space).
But I’m still fighting with trying to figure out Gleba, and haven’t even been to Fulgara yet, so struggling with quality is going to take a back seat for now.
I don’t think monotheism was a big thing before.
It wasn’t. There’s an established theory that the earliest religions started with pantheism, believing that things in the natural world had spirits - wind, trees, animals; you’d make offerings to the rain spirit if you wanted rain.
Then it evolved into - they’re animals, but also gods. Think Egyptian pantheology.
Then it evolved into, gods are just really powerful, ageless people who are responsible for certain aspects of human life, and who live in a great version of the best thing we have: Ceres makes your crops plentiful, and lives in Mount Olympus; Freya helps you make babies and lives in Valhalla.
Then it evolved into monotheism. There’s only one God: Allah, Jehova, Yahweh. Although, it should be pointed out that the old testament - the Tora, abridged - doesn’t say there aren’t other gods, but only that you shouldn’t worship them. In the ancient Semitic writings, Yahweh actually has a wife (Asherah); some scholars believe they ruled together. This is technically henotheism, but that’s for religion nerds; we generally consider Judaism monitheistic. The new testament changes this and claims there is only one God - one of the Christian Bible’s very many self-contradictions. But it’s a really good view at the progression from polytheism to monotheism, all in one book.
The Jewish God is absolutely a dude: he has a wife. The Christian God is a dude, if only because he’s always, invariably referred to as “he.” That’s not surprising because Christianity is just Judaism, part II. The Islamic God, Allah, is also canonically male.
We still have lots of great, living examples of the whole range, and others I haven’t mentioned: Shinto, Buddhism, Wicca, and a variety of indigenous religions still practiced around the world. We even see a resurgence of some indigenous religions that never quite died out and are becoming more popular.
The point, though, is that there’s evidence of a evolution, each belief system growing out of the previous, each making Man more significant in the grand scheme of things, and that monotheism is fairly late in the game. Deism might be the most recent to come along; IDK, I’m not really up to speed on current theory.
I mean, the basic config file for Caddy is 1 line, and gives you Let’s Encrypt by default. The entire config file for a reverse proxy can be as few as 3 lines:
my.servername.net {
reverse_proxy 127.0.0.1:1234
}
It’s a single executable, and a single 3-line file. Caddy is an incredible piece of software.
Nope! No security concerns!
But, seriously, if one machine in the Wireguard network is compromised, attacks can be launched on any other machine in that Wireguard subnet. At that point, whether you’re running Wireguard or not is irrelevant.
For your specific setup, the weak point is the VPS. Everything is good, but if someone successfully beaks into an account on your VPS with access to the Wireguard device (and almost nobody goes through the effort of constraining network devices by account, and of course there’s always root) they can launch attacks on any machine in the WG subnet.
It’s a little better if you’re running containers and they’re secure, but even then there are security considerations with containers. Still, that’s about the best you’re going to get: anything listening to any external internet port is running in a container with no resource runtime, and those ideally each only have limited access to the ports in the WG subnet that they need. Eg, something like:
In your diagram, your VPS is just a gateway. If the only way to log into the VPS is over WG; and if the reverse proxy is running in a locked-down container; then this is about a secure as you can make it and still allow public access.
Or: if the only way your VPS is at all accessible is over WG – all clients have to be connected to it via VPN – then it’s reasonably secure as long as no client is compromised. Then your remote devices become the weak points.
To quote stupidcasey:
think fascism literally means to fassen together like a bundle of sticks that is harder to break than one stick
But also… What?
Thank you. I may try it; postfix seems to give me grief ever other update, like they can’t leave the damned config file alone.
Established monotheistic religions dogma nearly always has their god as a male. You find female gods in polytheism; Wicca recognizes a goddess who tends to be considered “the top god”, but it’s a polytheistic religion with deities of both sexes (modern Wiccaanism may have adopted genderless deities for inclusively, idk). I an aware of no major monotheistic religions that allow that god may have no gender.
OP is speculating about “a” god, implying one of the monotheistic religions, and probably Christianity or Judaism - in both of which God is absolutely and unarguably defined as male. They’re religions defined by men, naturally with a man at top.
If you’re going to throw out Jehova and Allah and all the other dogmatically male gods of popular monotheistic religions, why not just shit-can the whole absurd idea of religion instead of trying to twist it to yet another different silly religion?
I miss the old days, before you had to worry about spam.
I’m not OP, and I have everything set up fine now; Mailcow would replace what I currently have with the same software components, so I don’t see any value there - for myself.
Something like Maddy is completely at odds with the Unix philosophy, and yet I’ve fought enough with postfix to dislike it enough to want to try an all-in-one. I dread the DKIM setup, though; that took so much time, and the mail server configuration wasn’t the hard part. Maybe now I’ve got it configured for my domains, switching email server software will be easier.
I was going to ask if anyone had experience with Maddy, which is an all-in-one solution I’ve been eyeballing for a while.
Getting DKIM and postfix set up correctly was such a PITA, and then dovecot, I’m nervous about having to go through all that again and fretting about accidentally configuring an open relay, so I haven’t tried it yet. But it looks nice, and has been around for a couple of years.
I wondered; I wasn’t sure how the chemistry of this worked, because of the existence of edibles.
Chemistry is a massive knowledge gap for me.
Yeah, so I dug into it, and it’s definitely not offline. It uses gtts, which ultimately makes calls to google.com for the tts. You can track it down yourself, but you’ll eventually end up here, which talks about how to change the google host name in case it’s blocked.
I’m not sure why you believe not needing an API key means it isn’t calling a Google API, especially in this case where it clearly states it’s using an unofficial channel - which is the same trick third party YouTube clients use to access YouTube videos without using API keys.
The point I was trying to make is that there is no “it.” It’s a collection of specifications built around an extremely minimalist protocol for a distributed, federated system of nodes. The biggest network happens to be swarming with an array of people with questionable or outright objectionable ethics, but there’s no reason why an alternative network of connected nodes with different values can’t grow.
I really like Nostr for its simplicity and lightweight nature. It’s super easy to run a node, and can easily be done in a minimal VPS with almost no disk, memory, or compute. Messages are lightweight (not being based in a heavy container like XML), so even with message caching, it sips disk space. There are a bunch of useful extensions (and some that people are going to object to, light the cryptocurrency extension), but these are all optional and enabling them is nearly always a runtime configuration option if the server supports it.
There are dozens on servers, and as many clients. Interacting with it reminds me off early HTTP, when you could reasonably telnet in to a servers, type a couple of lines of a header, and get a response. It’s absolutely delightful.
The only thing we lack is a coordinated list of alt-nodes that don’t federate with the biggest node network containing the crypto and alt-right[1]. Maybe I should start a list; I dread having to curate it against trolls, though.
[1] I hate that crypto has become so closely associated with the alt-right, because there’s a lot of positive theory behind it. Cryptographically auditable public ledgers are a really useful tool. An alternative financial system owned by the participants and not by a single centralized regime is a great idea. It was a decentralized, federated financial system before “federation” became a movement, and it is ironic that the strongest criticisms come from proponents of decentralization and federation. Proof of work turned out to be a really poor design choice, but I don’t know why any leftist would argue that - in theory - a system that supports virtual trading tokens which is not under the control of a Central Bank is worse than our current surveillance-state, KYC financial system. And there are cryptocoins that use a consensus mechanism other than proof-of-work (2), and which consume less energy than all of the servers running federated systems like Lemmy and Mastodon.
Sorry about the crypto rant. The fact that crypto - which already had issues - has become associated with the alt-right really bothers me. The knee-jerk distain because of environmental impact was one thing, because although it’s not the whole story, most coins are based on POW and do have a horrible carbon footprint. And there’s a bunch of graft in the space; it has problems, but those are solvable. Well, you can’t “solve” graft, any more than you can “solve” CP on the internet; but the carbon footprint issue isn’t a fundamental component of cryptocoins - unfortunately just the most popular ones. But the lean to the right on the part of the broader crypto community celebrities is really disheartening.
It’s swarmed by crypto content but it’s a nice, simple, distributed protocol. Run your own node; compared to any AP service, it’s astonishingly lightweight. Peer, or not; refuse to handle traffic from the crypto heavy nodes.
It’s a fantastic, well designed protocol. Read a few NIPS, then read the Activity Pub design and you tell me which one you think is more well-designed.
I won’t ignore that the majority of traffic was crypto stuff, but it’s slowly broadening out to more legitimate content, like porn.
Good tips, thanks!